CVE-2025-65203

Name of the Vulnerable Software and Affected Versions KeePassXC-Browser versions through 1.9.9.2

Description The software autofills or prompts users to fill stored credentials into documents rendered under a browser-enforced Content Security Policy (CSP) directive and iframe attribute sandbox. This allows attacker-controlled script within the sandboxed document to access populated form fields and potentially exfiltrate credentials.

Recommendations Update to a version later than 1.9.9.2.